Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Virus / Hijack / Trojan


  • This topic is locked This topic is locked
1 reply to this topic

#1 rayofsting

rayofsting

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 05 September 2014 - 03:23 AM

Hi,

 

Two days ago I downloaded a movie file which wanted me to install a codec to play it.

I knew this was suspicious but I am running Sunbelt Viper which usually nuts out these kinds of problems so I continued with the installation.

Half way through it said there was an error and the install stopped.

 

I now have multiple processes opening for chrome and internet explorer, each chewing up a huge amount of memory.

 

I did a Viper scan and removed a few items.

I also did a scan with Malware Bytes and was again able to remove a few things apart from:

Files: 3
Hijack.Host, C:\WINDOWS\system32\drivers\etc\hosts, Good: (), Bad: (146.0.75.221 www.google-analytics.com.), Removal Failed,[fb0bca20e794ec4a51e146dc7a8b639d]
Hijack.Host, C:\WINDOWS\system32\drivers\etc\hosts, Good: (), Bad: (146.0.75.221 google-analytics.com.), Removal Failed,[d630f7f3e398d363cf63c85a17ee04fc]
Hijack.Host, C:\WINDOWS\system32\drivers\etc\hosts, Good: (), Bad: (146.0.75.221 connect.facebook.net.), Removal Failed,[fa0c52988fecd85ea989da48e2231ce4]
 
I did a system restore to a few days before i downloaded the file but it made no difference.
 
I have tried deleting the IE folder manually. I can delete all the files except the ones in Connection Wizard which respawn automatically as well as 3 in the IE root folder called; hmmapi.dll, iedw.exe and iexplore.exe.
 
While I have had no ads on my browsers, I have been getting them in Steam (gaming program) maybe due to the absence of adblock.
 
Offline everything runs a lot smoother but as soon as i connect to the internet the processes begin and I start to get a lot more lag, even since starting this thread my amount of lag has gone through the roof. 
I attempted to remove some programs I wasnt sure about from the msconfig startup list but again had no luck.
 
I AM STUMPED - PLEASE HELP!


BC AdBot (Login to Remove)

 


#2 Jo*

Jo*

  • Malware Response Team
  • 3,445 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:09:26 AM

Posted 06 September 2014 - 05:36 PM

double post
http://www.bleepingcomputer.com/forums/t/546965/infected-with-virus-hijack-trojan/#entry3468360

Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users